48ad4454db79f34d2ed0e6be365d92fd_JaffaCakes118

General

Target

48ad4454db79f34d2ed0e6be365d92fd_JaffaCakes118
Size

2.6MB
MD5

48ad4454db79f34d2ed0e6be365d92fd
SHA1

c409a651c7b2d0ef329b55b7edc64a6aa2279964
SHA256

796126df698bd87b39bc7a273a6d4d37cf805d2ae83a5893ac67a0a61186d9b8
SHA512

81b694746b3c660a0232e7101e5b9f9269656984b418713ffbdda69d319926bdcdc2d88b1acbd031b232f5960e2ff3acd6f91490d4ef8a23f71b3b2eea82d427
SSDEEP

49152:uadB55OckqQ+d9o48VmRAIL7vuvtRl1Sp0XW44Gf69z0FZXzx4r4tvKaZ4Q1niUS:tB55o+oQRAqWbSptnwZXimi4Vo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
48ad4454db79f34d2ed0e6be365d92fd_JaffaCakes118

Files

48ad4454db79f34d2ed0e6be365d92fd_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0f807cc6715b94b7f0480da952ec2e28

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CreateEventA
CreateFileA
DeleteCriticalSection
EnterCriticalSection
FreeLibrary
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
GetModuleHandleA
GetProcAddress
GetVersionExA
HeapAlloc
HeapDestroy
HeapFree
InitializeCriticalSection
InterlockedExchange
LeaveCriticalSection
LocalFree
MultiByteToWideChar
QueryPerformanceCounter
SetLastError
Sleep
VirtualAlloc
lstrcmpiA
lstrlenA

user32

CharNextA
DestroyWindow
GetAsyncKeyState
GetMessageA
GetProcessWindowStation
GetWindowLongA
GetWindowRect
GetWindowThreadProcessId
IsDlgButtonChecked
IsIconic
IsWindow
LoadStringA
MessageBeep
MsgWaitForMultipleObjects
SendDlgItemMessageA
SetCursor
SetDlgItemTextA
SetMenu

Sections

.text
Size: 2.4MB - Virtual size: 2.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 4.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 182KB - Virtual size: 182KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0f807cc6715b94b7f0480da952ec2e28

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 2.4MB - Virtual size: 2.4MB

.data Size: - Virtual size: 4.6MB

.bss Size: 182KB - Virtual size: 182KB

.idata Size: 1KB - Virtual size: 1KB

.rsrc Size: 3KB - Virtual size: 2KB

.text
Size: 2.4MB - Virtual size: 2.4MB

.data
Size: - Virtual size: 4.6MB

.bss
Size: 182KB - Virtual size: 182KB

.idata
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 3KB - Virtual size: 2KB